help remote users change their password

[rbreidenstein]

i am looking for a way to allow remote users that have nothing more than remote access to the network be able to change their password w/o calling someone and have them change it. i attempted to use dsmod but it won't allow the pw change unless the user had rights to be a user manager in ad. any suggestions?

 

[ReddLefty]

I simply use Outlook Web Access as my source for users to change their passwords. In the Options sections, they can change the passwords. A bit of tweaking is involved for it to work in SSL, but you can find KB's for the "How To Setup OWA in Secure Mode (SSL)".

There might be 3rd party software, but I have one of those 0$ budgets, so I need to use what I already have.



"In space, nobody can hear you click..."

 

[rbreidenstein]

Ok but will that sync your computer as well?

 

[ReddLefty]

They should. In any case, when the user connects back to the domain, they will synch. If the user never connects to the domain, then they shouldn't be in it anyhow.

The drawbacks I could see is someone changing their password in OWA (network account) in the local administrator mode (for example) of the machine. Then the machine would have the old password still until they connect to the domain once more. (like with a VPN for example, which is another way the users can change their passwords).

With a VPN, you can have them log into a server and they can change their password directly on their system and it will synch with the servers.. these are all ideas that will work, but work and planning are involved.



"In space, nobody can hear you click..."